5 matches found
WordPress Hide My WP Plugin SQL Injection (CVE-2021-36916)
An SQL injection vulnerability exists in WordPress Hide My WP Plugin. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2021-36916
creationtimestamp| type| source ---|---|--- 2021-11-24 20:27:10+00:00| seen| https://t.me/cibsecurity/32971...
CVE-2021-36916
The SQL injection vulnerability in the Hide My WP WordPress plugin versions = 6.2.3 is possible because of how the IP address is retrieved and used inside a SQL query. The function "hmwpgetuserip" tries to retrieve the IP address from multiple headers, including IP address headers that the user c...
CVE-2021-36916 WordPress Hide My WP premium plugin <= 6.2.3 - Unauthenticated SQL injection (SQLi) vulnerability
The SQL injection vulnerability in the Hide My WP WordPress plugin versions = 6.2.3 is possible because of how the IP address is retrieved and used inside a SQL query. The function "hmwpgetuserip" tries to retrieve the IP address from multiple headers, including IP address headers that the user c...
CVE-2021-36916
CVE-2021-36916 : WordPress Hide My WP premium plugin